$ rpki-client -vvf rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/A3FBC4668A3511ECB4502D0DC4F9AE02.roa File: A3FBC4668A3511ECB4502D0DC4F9AE02.roa (raw, json) Hash identifier: EHGFFNKYLhkroKhaSJxD35WEinaxk7mhvnsD4zQjF4g= Subject key identifier: 43:AA:0E:91:BB:96:26:3D:EF:C2:8C:1B:31:55:6A:48:21:A0:E0:2C Certificate issuer: /CN=A9136429/serialNumber=989319F56A7AE24208D13624DD69D8E4091B7C24 Certificate serial: 03A4 Authority key identifier: 98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/A3FBC4668A3511ECB4502D0DC4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:30 +0000 ROA not before: Fri 07 Mar 2025 00:46:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149498 IP address blocks: 103.181.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.crl rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136429, serialNumber=989319F56A7AE24208D13624DD69D8E4091B7C24 Validity Not Before: Mar 7 00:46:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41e6-a0d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:39:59:57:64:c8:fc:df:30:28:c2:80:21: f9:5c:5b:2c:73:c8:19:4f:bf:63:2c:34:26:a9:a9: b7:6a:99:3d:5b:33:c3:ea:69:86:dd:84:87:7c:47: 51:2a:ed:98:3d:da:6c:c9:c8:7c:65:51:6e:86:db: 5a:52:f9:89:ee:e5:82:5c:90:b6:43:72:74:1d:b8: 26:37:b8:37:a4:06:5a:2a:4c:9e:c0:a8:3e:e2:fe: 12:a5:b6:db:73:f5:59:b5:74:fd:ef:0d:5c:c8:67: 71:ab:fc:08:dc:e7:f1:ff:de:71:e7:38:fc:6c:40: b4:72:32:e8:32:5d:27:e1:ee:7e:1b:ee:d7:fc:ef: f5:84:73:cb:5c:70:ef:57:1b:06:01:a3:69:b9:e3: 74:c2:6c:c2:03:fa:78:0e:c7:cd:02:bb:fc:ae:45: 48:6c:d2:99:b4:83:30:28:c7:7a:c7:bb:5b:c9:09: b1:9d:b7:a5:d5:0a:fc:76:ff:50:5d:21:f6:fb:cc: 0c:73:97:38:e5:22:36:ef:f8:25:33:e2:b0:b1:5a: ea:00:be:00:02:48:8b:e0:95:ec:98:09:eb:b1:60: ac:02:ae:f6:de:e3:4e:8b:a0:3a:e2:3c:85:9d:bc: 20:aa:e0:9d:88:d5:01:14:1d:c2:7f:c8:22:93:53: 7f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AA:0E:91:BB:96:26:3D:EF:C2:8C:1B:31:55:6A:48:21:A0:E0:2C X509v3 Authority Key Identifier: keyid:98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/A3FBC4668A3511ECB4502D0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.68.0/24 Signature Algorithm: sha256WithRSAEncryption 11:62:28:1d:52:da:f4:7f:38:28:52:a2:e9:1d:4e:4d:b4:19: c9:7b:03:6c:96:79:39:bc:77:b7:3c:1d:5b:20:26:02:0c:ec: e8:6b:94:3d:de:34:fc:cf:c9:1f:1b:2b:5a:69:52:c4:5e:25: 71:71:ea:c2:b7:9f:44:87:b4:a6:d1:2b:9f:51:98:39:33:fc: 34:c7:29:76:80:5c:30:e5:9b:c0:5a:56:3c:dd:ba:a4:d3:5c: 37:de:27:74:c5:63:59:1b:15:b6:3f:98:6e:82:53:3b:5f:ce: 98:e0:23:5e:ed:67:34:8d:3f:ff:49:a2:97:2f:8e:fa:5d:02: 07:e3:95:ce:ba:cf:79:1a:95:db:e0:3d:37:26:0b:1b:eb:a1: a6:7c:d1:dc:67:17:0a:d0:50:01:82:48:d8:65:55:b0:09:46: 29:98:3e:50:0e:6b:3f:b8:ef:51:7e:b8:ac:13:e7:c7:c7:b1: 1b:ae:12:97:ab:f2:d2:30:8e:0c:e5:0d:22:c9:1d:8c:17:36: dc:a0:15:0f:d5:e5:ac:db:ce:f0:72:62:7d:4d:59:e3:7a:cf: ce:9e:49:c2:eb:ce:f6:92:ea:3c:40:bf:dd:09:f4:f2:79:41: 83:1e:20:1a:c7:a2:51:20:f1:23:e1:2d:f1:47:a2:d1:ac:ed: 21:3c:6b:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0MjkxMTAvBgNVBAUTKDk4OTMxOUY1NkE3QUUyNDIwOEQxMzYyNERENjlEOEU0 MDkxQjdDMjQwHhcNMjUwMzA3MDA0NjMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFlNi1hMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XI5WVdkyPzfMCjCgCH5XFssc8gZT79jLDQmqam3apk9WzPD6mmG3YSHfEdR Ku2YPdpsych8ZVFuhttaUvmJ7uWCXJC2Q3J0HbgmN7g3pAZaKkyewKg+4v4Spbbb c/VZtXT97w1cyGdxq/wI3Ofx/95x5zj8bEC0cjLoMl0n4e5+G+7X/O/1hHPLXHDv VxsGAaNpueN0wmzCA/p4DsfNArv8rkVIbNKZtIMwKMd6x7tbyQmxnbel1Qr8dv9Q XSH2+8wMc5c45SI27/glM+KwsVrqAL4AAkiL4JXsmAnrsWCsAq723uNOi6A64jyF nbwgquCdiNUBFB3Cf8gik1N/rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEOqDpG7 liY978KMGzFVakghoOAsMB8GA1UdIwQYMBaAFJiTGfVqeuJCCNE2JN1p2OQJG3wk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQyOS9FODBGRkI0ODhB MzIxMUVDQjA4RDkwMEFDNEY5QUUwMi9tSk1aOVdwNjRrSUkwVFlrM1duWTVBa2Jm Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21KTVo5V3A2NGtJSTBUWWszV25ZNUFrYmZDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY0MjkvRTgwRkZCNDg4QTMyMTFFQ0IwOEQ5MDBBQzRGOUFFMDIvQTNGQkM0NjY4 QTM1MTFFQ0I0NTAyRDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntUQwDQYJKoZIhvcNAQELBQADggEBABFiKB1S2vR/OChS oukdTk20Gcl7A2yWeTm8d7c8HVsgJgIM7OhrlD3eNPzPyR8bK1ppUsReJXFx6sK3 n0SHtKbRK59RmDkz/DTHKXaAXDDlm8BaVjzduqTTXDfeJ3TFY1kbFbY/mG6CUztf zpjgI17tZzSNP/9JopcvjvpdAgfjlc66z3kaldvgPTcmCxvroaZ80dxnFwrQUAGC SNhlVbAJRimYPlAOaz+471F+uKwT58fHsRuuEper8tIwjgzlDSLJHYwXNtygFQ/V 5azbzvByYn1NWeN6z86eScLrzvaS6jxAv90J9PJ5QYMeIBrHolEg8SPhLfFHotGs 7SE8a+E= -----END CERTIFICATE-----Generated at Sat Apr 26 08:29:10 2025 by rpki-client